|
Server IP : 173.236.192.202 / Your IP : 216.73.216.85 Web Server : Apache System : Linux iad1-shared-e1-03 6.6.49-grsec-jammy+ #10 SMP Thu Sep 12 23:23:08 UTC 2024 x86_64 User : andfor18 ( 14551322) PHP Version : 7.4.33 Disable Function : NONE MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : ON Directory (0755) : /etc/python2.7/../ |
| [ Home ] | [ C0mmand ] | [ Upload File ] | [ Lock Shell ] | [ Logout ] |
|---|
# # /etc/sysctl.conf - Configuration file for setting system variables # See sysctl.conf (5) for information. # # Be warned that /etc/init.d/procps is executed to set the following # variables. However, after that, /etc/init.d/networking sets some # network options with builtin values. These values may be overridden # using /etc/network/options. # DH standard options: kernel.pid_max=3072000 fs.file-max=6815744 kernel.sem=1000 128000 1028 2512 kernel.panic=30 vm.mmap_min_addr=65536 net.ipv4.tcp_syncookies=1 net.ipv4.tcp_timestamps=0 net.ipv4.conf.all.accept_redirects=0 net.ipv4.conf.all.log_martians=1 net.ipv4.conf.all.rp_filter=2 net.ipv4.conf.all.accept_source_route=0 net.ipv4.icmp_echo_ignore_broadcasts=1 net.ipv4.icmp_ignore_bogus_error_responses=1 net.ipv4.conf.all.promote_secondaries=1 # Custom settings for this machine/cluster: # # /etc/sysctl.conf - Configuration file for setting system variables # See sysctl.conf (5) for information. # # Be warned that /etc/init.d/procps is executed to set the following # variables. However, after that, /etc/init.d/networking sets some # network options with builtin values. These values may be overridden # using /etc/network/options. # DH standard options: # Custom settings for this machine/cluster: vm.swappiness=40 net.ipv4.ip_nonlocal_bind=1 net.ipv4.conf.all.arp_announce=2 net.core.rmem_max=33554432 net.core.wmem_max=33554432 net.core.netdev_max_backlog=182757 net.ipv4.tcp_rmem=4096 87380 33554432 net.ipv4.tcp_wmem=4096 65536 33554432 vm.heap_stack_gap=1048576 net.netfilter.nf_conntrack_tcp_timeout_established=86400 # link race protection fs.protected_hardlinks=0 fs.protected_symlinks=0 ### Grsecurity settings ### # We dont use KMS graphics # Log/audit settings kernel.grsecurity.rwxmap_logging=0 kernel.grsecurity.exec_logging=0 kernel.grsecurity.resource_logging=1 kernel.grsecurity.chroot_execlog=1 kernel.grsecurity.audit_ptrace=1 kernel.grsecurity.signal_logging=1 kernel.grsecurity.forkfail_logging=1 kernel.grsecurity.timechange_logging=1 kernel.grsecurity.audit_mount=0 kernel.grsecurity.audit_chdir=0 # Chroot settings kernel.grsecurity.chroot_caps=1 kernel.grsecurity.chroot_deny_bad_rename=1 kernel.grsecurity.chroot_deny_sysctl=1 kernel.grsecurity.chroot_restrict_nice=1 kernel.grsecurity.chroot_deny_unix=1 kernel.grsecurity.chroot_findtask=1 kernel.grsecurity.chroot_deny_shmat=1 kernel.grsecurity.chroot_deny_mknod=1 kernel.grsecurity.chroot_deny_fchdir=1 kernel.grsecurity.chroot_deny_chmod=1 kernel.grsecurity.chroot_enforce_chdir=1 kernel.grsecurity.chroot_deny_pivot=1 kernel.grsecurity.chroot_deny_chroot=1 # Filesystem protection kernel.grsecurity.fifo_restrictions=1 kernel.grsecurity.linking_restrictions=1 kernel.grsecurity.sysfs_restrict_bypass_gid=1002 kernel.grsecurity.enforce_sysfs_restrict=1 # Executable protection kernel.grsecurity.harden_ptrace=1 kernel.grsecurity.ptrace_readexec=1 kernel.grsecurity.consistent_setxid=1 kernel.grsecurity.harden_ipc=1 kernel.grsecurity.harden_tty=1 kernel.grsecurity.dmesg=1 # Memory protection kernel.grsecurity.deter_bruteforce=0 # NightmareLabs settings: kernel.grsecurity.tpe=0 kernel.grsecurity.tpe_invert=0 kernel.grsecurity.tpe_restrict_all=0 kernel.grsecurity.socket_all=5002 kernel.grsecurity.socket_client=5003 kernel.grsecurity.socket_server=5004 kernel.grsecurity.tpe_gid=5005 # Prevent changes to this file: kernel.grsecurity.grsec_lock=0 # CVE-2021-33909 kernel.unprivileged_bpf_disabled=1